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communications drivers , said intercepted function calls and requests for service being limited to 
communications functions with no reference to encryption functions ; 

means for causing an applications level authentication and encryption program in said one 
of said client computers to communicate with the server in response to receiving said intercepted 
function calls and requests for service by [generate] generating a session key, [use] using the 
session key generated by the applications level authentication and encryption program to encrypt 
file sent by the applications program , and sending function calls and requests for service to the 
lower level set of communications drivers in order to [before transmittal] transmit said encrypted 
files over said open network. 

f 

\$>. (Twice Amended) Computer software for installation on a client computer of a multi-tier 
virtual private network, said network including a server and a plurality of client computers, the 
server and client computers each including means for transmitting data to and receiving data from 
an open network, wherein said means for transmitting data to and receiving data from an open 
network includes a lower set of communications drivers, said lower set of communications 
drivers being arranged to receive function calls and requests for service from an applications 
program in order to transmit and receive said data , 
wherein said computer software includes: 

applications level encryption and authentication software arranged to communicate with 
the server in order to: a.) mutually authenticate the server and the client computer initiating 
communications with the server and b.) generate a session key for use by the client computer 
initiating communications to encrypt files; 

and a shim arranged to intercept said function calls and requests for service sent by an 
applications program to the lower set of communications drivers , said function calls and requests 
for service being limited to communications functions without reference to encryption, in order 
to cause the applications level authentication and encryption program to communicate with the 
server, generate said session key, and use the session key [operated] generated by the applications 
level encryption and authentication software to encrypt files sent by the applications program 
before transmittal over said open network using function calls and requests for service 
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transmitted by the applications level authentication and encryption program to the lower level 
set of communications drivers . 



. (Twice Amended) A method of carrying out communications over a multi-tier virtual private 
network, said network including a server and a plurality of client computers, the server and client 
computers each including means for transmitting data to and receiving data from an open 
network, wherein said means for transmitting data to and receiving data from an open network 
includes a lower set of communications drivers, said lower set of communications drivers being 
arranged to receive function calls and requests for service from an applications program in order 
*3 to transmit and receive said data , comprising the steps of: 

intercepting said function calls and requests for service sent by [an] said applications 
program [on one of said client computers] to [a] said lower level set of communications drivers,, 
said intercepted function calls and requests for service being limited to communications functions 
with no reference to encryption functions ; 

causing an applications level authentication and encryption program in said one of said 
client computers to communicate with the server in response to receiving said intercepted 
function calls and requests for service by [generate] generating a session key, [use] using the 
session key generated by the applications level authentication and encryption program to encrypt 
file sent by the applications program , and sending function calls and requests for service to the 
lower level set of communications drivers in order to [before transmittal] transmit said encrypted 
files over said open network.-. 



^ REMARKS 

Reconsideration of the application is respectfully requested on the basis that claim 1 has 
been amended to clarify the distinction between interception of function calls to a set of 
communications drivers and including encryption functions in the set of communications drivers 




